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Amendments to the Claims 

This listing of claims will replace all prior version, and 
listings, of claims in the application: 

Listing of Claims; 

1 . (Original) A method by which a first computing entity having an RSA key pair (Na^a), 
(Na,c1a) digitally signs and encrypts a message data string, m, for decryption by a second 
computing entity having an RSA key pair (Nb^b), (Nb^b), where |N A | = |N B | = k and 

m e {0,1}", and k = n + k 0 + kj for integers k 0 and kj 9 the method comprising: 

a) selecting an integer r e {0,1}*° , 

b) computing: 

w<— H(Cj(ai least m and r)) 
where H : {0,1}" + * 0 — » {0,l} kl , and CjO is a deterministic combination function, 

c) computing: 

s^- Enc(w, Ci(dX least m and r)) 

where Enc() is a symmetric-key encryption function using w as key, and C2O is a 
reversible combination function; 
steps a) to c) being repeated as necessary to obtain s\\(0 <N A ; and then 

d) signing by computing: 

c'f- (Cs(dX least s and w) f A mod N A 
where C3(9 is a reversible combination function; and 

e) if c '<Nb> encrypting c' by computing: 

c-c' €b modN 5 . 

2. (Original) A method according to claim 1, wherein if c' > N B following step d), the most 
significant bit of c' is removed to obtain a new c f which is then encrypted by computing: 

c = c' Cb modAf fl . 
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3. (Original) A method according to claim 1, wherein if c' > Nb following step d), steps a) 
to d) are repeated as necessary to obtain c' <Nb whereupon c' is encrypted by computing: 

c = c /Cfi mo&N B 

4. (Original) A method according to claim 1, wherein r is selected at random. 

5. (Original) A method according to claim 1, wherein the function CiO is a concatenation 
function. 

6. (Original) A method according to claim 1, wherein the function C 2 0 is a concatenation 
function. 

7. (Original) A method according to claim 1, wherein the function CsO is a concatenation 
function. 

8. (Original) A method according to claim 1, wherein the functions CiQ, C 2 ()> C 3 0 are all 
concatenation functions. 

9. (Previously presented) A method according to claim 1 ? wherein the symmetric-key 
encryption function EncQ effects at least the following operations: 

- forming a hash of the key w; 

- forming an exclusive-OR of the hash of w with the output of the combination function 

C 2 Q- 



1 0. (Previously presented) Apparatus for carrying out the method of claim 1 . 
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1 1 . (Previously presented) A computer-readable medium storing a computer program 
arranged to condition a program-controlled computer, when executed by the latter, to 
carry out the method of claim 1 . 

12. (Previously presented) A method according to claim 1, wherein the second computing 
entity on receiving c: 

(f) computes: 

c'<-c d ' mo&N B 
and, provided c' <N A , proceeds to the next step; 

(g) computes: 

c" A mo<XN A 

with the result being subject to a reverse of the combination function CsQ whereby to 
recover at least: s and w; 

(h) computes: 

Dec(w, s) 

where DecQ is a symmetric-key decryption function complimenting EncQ, with the result 
being subject to a reverse of the combination function C2O whereby to recover at least: m 
and r\ 

(i) checks that the message m is from the first computing entity by checking that: 

w= H(Ci(at least m and r)) . 

13. (Previously presented) A system comprising a first computing entity, a second computing 
entity, and a communications network for communicating the first and second entities, 
the system being arranged to implement the method of claim 12. 

14. (Previously presented) A method according to claim 2, wherein the second computing 
entity on receiving c: 

(f) computes: 
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c' <^c d * mo<\N B , 
and, provided c' '<Na, proceeds to the next step; 

(g) computes: 

c' eA modN A 

with the result being subject to a reverse of the combination function C3O whereby to 
recover at least: s and w; 

(h) computes, 

Dec(w, s) 

where DecO is a symmetric-key decryption function complimenting Enc(), with the result 
being subject to a reverse of the combination function C2O whereby to recover at least: m 
and r; 

(i) checks that the message m is from the first computing entity by checking that: 

w = H(Ci(aX least m and r))\ 
j) where the check carried out in step (i) fails, computes a new value for c f as: 
c*<- c' +2 k_I 

and, provided c f < N A , repeats once steps (g) to (i). 

15. (Previously presented) A system comprising a first computing entity, a second computing 
entity, and a communications network for communicating the first and second entities, 
the system being arranged to implement the method of claim 14. 

16. (Previously presented) A method by which a second computing entity having an RSA 
key pair (Nb ? ee), (N B , ds), decrypts and authenticates a ciphertext c that is purportedly a 
signed and encrypted form produced by a first computing entity of a message data string 
aw, the first computing entity having an RSA key pair (N A ,e A ), (Na4a) where |N A | = |Nb| 
= k and m e {0,1}", and k = n + ko + for integers ko and kj; the second computing 
entity on receiving c: 

(a) computes: 



Preliminary Amendment 

U.S. Patent Application No. 10/729,299 
March 17, 2004 
Page 6 

c' <r-c d ° mo&N B 
and proceeds to the next step provided that c' <N A \ 

(b) computes: 

c' e * modN A 

with at least quantities s and w being recovered from the result; 

(c) computes: 

Dec(w,s) 

where DecQ is a symmetric-key decryption function complimenting EncQ, with at least 
quantities m and r being recovered from the result; 

(d) checks that the message m is from the first computing entity by checking that: 

w = H(Cj(at least m and r)) 
where H : {0,l} n+ *° — > {0,1}*' and CiO is a deterministic combination function. 

17. (Previously presented) A method according to claim 16, wherein the function CjQ is a 
concatenation function. 

18. (Previously presented) A method according to claim 16, wherein the symmetric-key 
decryption function DecQ effects at least the followings operations: 

- forming a hash of the key w; 

- forming an exclusive-OR of the hash of w with s. 

19. (Previously presented) Apparatus for carrying out the method of claim 16. 

20. (Previously presented) A computer-readable medium storing a computer program 
arranged to condition a program-controlled, computer, when executed by the latter, to 
carry out the method of claim 16. 
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2 1 . (Currently amended) A method by which a first computing entity having an RS A key pair 
(Na^a), (N A ,d A ) digitally signs and encrypts a message data string, m, for decryption by a 
second computing entity having an RSA key pair (Nb, ee), (Nb, d B ), where |N A | = |N B | = k 
and m e {0,1}" , and k = + + kj for integers £0 and &/ even , the method comprising: 

a) selecting an integer r e {0,1}*° , 

b) forming the hash co = H(m \\ r) where H : {0,l}" + *° -> {0,1}*' , and 

c) forming the hash 5 = G{(o) © (m || r) where G : {0,1}*' -> {0,l}" + *° ; 
steps a) to c) being repeated as necessary to obtain s || 0) < N A - and then 

d) signing by forming c = (s \\ co) dA mod N A ; and, if c' > Nb, 
removing the most significant bit of c f to obtain a new c'; and then 

e) encrypting c'by forming c-c eB modN B . 

22. (Previously presented) The method as claimed in claim 21 in which r is selected at 
random. 

23. (Previously presented) A computer storage medium having stored thereon a computer 
program readable by a general-purpose computer, the computer program including 
instructions for said general purpose computer to configure it for implementing the steps 
of the method of claim 21 . 

24. (Currently amended) A method by which a first computing entity having an RSA key pair 
(N A5 e A ), (Na^a) digitally signs and encrypts a message data string, m, for decryption by a 
second computing entity having an RSA key pair (N B ,e B ), (N B ,d B ) where |N A | = |N B | = k 
and m e {0,1}" , and k = n + k 0 + kj for integers k 0 and k } even ; the method comprising: 

a) selecting an integer r e {0,1}*° , 

b) forming the hash co = H(m || r) where H : {(U}^* 0 -> {0,1}' 1 , and 

c) forming the hash s = G(co) 0 (m || r) where G : {(U}' 1 -> {0,l}" + *° ; 
steps a) to c) being repeated as necessary to obtain s || co < N A and then 
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steps a) to c) being repeated as necessary to obtain s || co < N A and then 

d) signing by forming c' = (s \\ co) dA modN A ; 

steps aO to d) being repeated as necessary to obtain c' < N B , and then 

e) encrypting c' by forming c = c' €b mod N B . 

25. (Previously presented) The method as claimed in claim 24 in which r is selected at 
random. 

26. (Previously presented) A computer storage medium having stored thereon a computer 
program readable by a general-purpose computer, the computer program including 
instructions for said general purpose computer to configure it for implementing the steps 
of the method of claim 24. 



